CVE-2005-0525

NameCVE-2005-0525
DescriptionThe php_next_marker function in image.c for PHP 4.2.2, 4.3.9, 4.3.10 and 5.0.3, as reachable by the getimagesize PHP function, allows remote attackers to cause a denial of service (infinite loop) via a JPEG image with an invalid marker value, which causes a negative length value to be passed to php_stream_seek.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
ReferencesDSA-708-1, DSA-729-1
Debian Bugs302701

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
php3sourcewoody3:3.0.18-23.1woody3DSA-708-1302701
php3source(unstable)3:3.0.18-31
php4sourcewoody4:4.1.2-7.woody4DSA-729-1
php4source(unstable)4:4.3.10-10

Search for package or bug name: Reporting problems